Abstract signing cryptography #21
Conversation
puiterwijk
force-pushed
the
abstract-crypto
branch
3 times, most recently
from
ec28015
to
9eed7d2
Compare
|
The way it is implemented with traits and impls for |
|
Nice! I actually had something similar in the works, but with dyn Traits instead, so that you could potentially use more than one crypto provider at a time. Seemed useful to have both AWS KMS and OpenSSL, for example; but since this is complete, I am inclined to merge this instead and maybe rework it later on. |
|
Actually, this seems to be very similar indeed. Will need to go through a more thorough review, since it's a pretty large change. |
|
@petreeftime thanks. Let me know if you want me to rebase this patch. Also, I submitted implementations for KMS and TPM, but I think those might very well be better positioned as external crates (e.g. I mostly submitted those two implementations to show off that this trait implementation makes that absolutely possible. |
puiterwijk
force-pushed
the
abstract-crypto
branch
from
9eed7d2
to
e04fcf8
Compare
|
I just rebased this on the current main branch. |
|
I fixed the clippy needless borrows in this PR, since this PR would again have merge conflicts if it goes in after fixes for that were to go in. |
puiterwijk
force-pushed
the
abstract-crypto
branch
from
8791868
to
6df14f9
Compare
|
|
||
| [features] | ||
| default = ["key_openssl_pkey"] | ||
| key_openssl_pkey = [] |
There was a problem hiding this comment.
Can you make openssl an optional dependency?
There was a problem hiding this comment.
I think this would make more sense when we add a secondary crypto provider such as ring.
There was a problem hiding this comment.
The traits as proposed in this PR can immediately be implemented by external crates, so I don't see why the OpenSSL dependency should be required.
There was a problem hiding this comment.
So, openssl itself is still needed for encryption (which I did not abstract in this PR), and we still use it for things like computing digests before passing them to the crypto layer.
There was a problem hiding this comment.
I have submitted #28, which makes openssl a fully optional dependency (well, it is abstracted away, right now it's the only crypto implementation and you'll need one).
I don't see a reason why the TPM implementation couldn't be maintained here, I don't think it would end up being touched too much after the inital implementation. If this doesn't work out for whatever reason, we can figure out if we can be moved somewhere else instead. I think all we need to do in that case is to have the interface for the PrivateKey and PublicKey as public. |
This allows implementing signing and verification with more than openssl PKey(Ref), like a TPM or AWS KMS keys (awslabs#5). It implements the abstracted methods for PKeyRef, and PKey calls out to PKeyRef. Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
puiterwijk
force-pushed
the
abstract-crypto
branch
from
6df14f9
to
25d3bf2
Compare
|
The error is due to bitflags |
Bitflags 1.3.0/1.3.1 requires Rust 1.46 to compile, and that is dragged in via the openssl package. Signed-off-by: Patrick Uiterwijk <patrick@puiterwijk.org>
This allows implementing signing and verification with more than openssl
PKey(Ref), like a TPM or AWS KMS keys (#5).
It implements the abstracted methods for PKeyRef, and PKey calls out to
PKeyRef.
Signed-off-by: Patrick Uiterwijk patrick@puiterwijk.org
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of the Apache License Version 2.0, as specified in the LICENSE file of this repository.